[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fEZfLkwp9YjzLcqZOA4sKoFUATp8xy3HAp3_SzXRexK8":3,"$fjGX1UjnIc4mhoGoNiPeaURPKk7e10pyBm-yaHjXDYFE":232,"$f_6z020uM0YjP6m0ULAdwkuka_bm8ebS51Fc27kE0EZ0":237},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":41,"analysis":131,"fingerprints":210},"meks-simple-flickr-widget","Meks Simple Flickr Widget","1.3","Meks","https:\u002F\u002Fprofiles.wordpress.org\u002Fmekshq\u002F","\u003Cp>Quickly display your Flickr photos inside WordPress widget. No authorization required (only provide your user id).\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>No authorization required (only provide your user id)\u003C\u002Fli>\n\u003Cli>Support both user Flickr users and Flickr groups \u003C\u002Fli>\n\u003Cli>Change thumbnail size\u003C\u002Fli>\n\u003Cli>Caching system integrated for better performance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Simple Flickr Widget plugin is created by \u003Ca href=\"https:\u002F\u002Fmekshq.com\" rel=\"nofollow ugc\">Meks\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Live example?\u003C\u002Fh3>\n\u003Cp>You can see Simple Flickr Widget live example on our \u003Ca href=\"https:\u002F\u002Fmekshq.com\u002Fdemo\u002Fvoice\" rel=\"nofollow ugc\">Voice theme demo website\u003C\u002Fa>\u003C\u002Fp>\n","Quickly display your Flickr photos inside WordPress widget.",20000,407191,86,3,"2024-07-29T12:33:00.000Z","6.6.5","3.0","",[20,21,22,23,24],"flickr","photos","photostream","sidebar","widget","https:\u002F\u002Fmekshq.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmeks-simple-flickr-widget.zip",92,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":34,"display_name":7,"profile_url":8,"plugin_count":35,"total_installs":36,"avg_security_score":37,"avg_patch_time_days":38,"trust_score":39,"computed_at":40},"mekshq",14,116900,90,236,72,"2026-05-19T21:18:38.547Z",[42,62,79,97,113],{"slug":43,"name":44,"version":45,"author":46,"author_profile":47,"description":48,"short_description":49,"active_installs":50,"downloaded":51,"rating":52,"num_ratings":53,"last_updated":54,"tested_up_to":55,"requires_at_least":56,"requires_php":18,"tags":57,"homepage":18,"download_link":60,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"tz-flickr-widget","TZ Flickr Widget","1.0.3","tuyennv","https:\u002F\u002Fprofiles.wordpress.org\u002Ftuyennv\u002F","\u003Cp>This is a simple widget to display your Flickr latest photostream in widget area using Pretty Photo to open gallery images.\u003Cbr \u002F>\nYou can get your Flickr ID at http:\u002F\u002Fidgettr.com\u002F.\u003Cbr \u002F>\nWith its very beautiful widget interface, tabbed system, and powered by jQuery makes this plugin easier to customize.\u003Cbr \u002F>\nJust put your Flickr ID and your widget will be ready to lunch.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>Features & Options\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Beautiful widget interface\u003C\u002Fli>\n\u003Cli>The type of images from user id.\u003C\u002Fli>\n\u003Cli>Get the latest image.\u003C\u002Fli>\n\u003Cli>Put your number images you want to display.\u003C\u002Fli>\n\u003Cli>Optional image sizes.\u003C\u002Fli>\n\u003Cli>PrettyPhoto for image thumb.\u003C\u002Fli>\n\u003Cli>Free supports.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>Note: If you don’t know your ID of Flickr you can go to http:\u002F\u002Fidgettr.com\u002F get your ID.\u003C\u002Fp>\n","Plugin has get your Flickr photostream in a sidebar easily without authentication.",600,21563,100,2,"2015-08-24T08:33:00.000Z","4.2.39","3.0.1",[58,59,20,22,24],"badge","feed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftz-flickr-widget.zip",85,{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":52,"downloaded":70,"rating":28,"num_ratings":28,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":18,"tags":74,"homepage":77,"download_link":78,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"simple-flickr-photostream-widget","Simple Flickr Photostream","1.3.7","Bensventures","https:\u002F\u002Fprofiles.wordpress.org\u002Fvalidben\u002F","\u003Cp>Simple Flickr Photostream widget is another Flickr photo display. I exists because no other plugins were doing what the author needed.\u003C\u002Fp>\n\u003Cp>The plugin is essentially a widget that will show pictures from a chosen Flickr source, be it your own photostream, someone else’s, one of your sets, a group, your favorite, etc…\u003C\u002Fp>\n\u003Cp>The code is based on \u003Ca href=\"http:\u002F\u002Feightface.com\u002Fwordpress\u002Fflickrrss\u002F\" rel=\"nofollow ugc\">FlickrRss\u003C\u002Fa> plugin made by Dave Kellam and Stefano Verna and improves by placing the controls in the widget itself rather than an admin page. This new approach, combined with the way WP 2.7 handles widgets makes it multiwidgets enabled with different options for each widgets.\u003C\u002Fp>\n","Simple Flickr Photostream widget allow you display pictures from Flickr in a widgetized area of you choice. Based on the WP 2.7 widget model",26208,"2015-03-27T18:09:00.000Z","4.1.42","2.8",[20,75,76,22],"flickr-photostream","flickr-widget","http:\u002F\u002Fwww.ai-development.com\u002Fwordpress-plugins\u002Fsimple-flickr-photostream-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-flickr-photostream-widget.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":52,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":18,"tags":93,"homepage":95,"download_link":96,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"flickr-me","Flickr Me","1.0.6","Erik Ford","https:\u002F\u002Fprofiles.wordpress.org\u002Fwearepixel8\u002F","\u003Cp>With Flickr Me, you can add Flickr feeds, from an individual account or group, to your widget ready areas. Once installed and activated the widget is an easy to manage, out of box solution for displaying a Flickr gallery of images. Each photo, in the feed, will link to its Flickr permalink and you can optionally set to display the title when stacking images.\u003C\u002Fp>\n","Add Flickr feeds to your widget ready areas.",40,6165,1,"2016-05-02T15:14:00.000Z","4.5.33","3.1",[20,94,21,23,24],"images","http:\u002F\u002Fheavyheavy.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fflickr-me.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":87,"downloaded":105,"rating":52,"num_ratings":89,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":18,"tags":109,"homepage":111,"download_link":112,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"javascript-flickr-badge","Javascript Flickr Badge","2.3","erikrasmussen","https:\u002F\u002Fprofiles.wordpress.org\u002Ferikrasmussen\u002F","\u003Cp>Javascript Flickr Badge uses pure javascript to place a Flickr badge in your widget-enabled sidebar to display recent photos. Photos\u003Cbr \u002F>\nmay be filtered by tag if so desired. All communication with Flickr is client-side, so no extra load is placed on your server at all.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fblog.jyst.us\u002Fjavascript-flickr-badge?utm_source=Wordpress&utm_medium=Wordpress%2BPlugin%2BDirectory&utm_campaign=Javascript%2BFlickr%2BBadge\" rel=\"nofollow ugc\">Plugin Page\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=AyRj7U-dExI\" rel=\"nofollow ugc\">Demo Video\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customizable thumbnail size, number of rows, and number of columns to fit perfectly into any sidebar.\u003C\u002Fli>\n\u003Cli>Works for your personal photo stream, group pools, or your friends photostreams.\u003C\u002Fli>\n\u003Cli>Filtering by tag (user feed only).\u003C\u002Fli>\n\u003Cli>Lightweight javascript. No heavy libraries required!\u003C\u002Fli>\n\u003Cli>Works on mobile browsers\u003C\u002Fli>\n\u003Cli>All the work happens client-side. No server load.\u003C\u002Fli>\n\u003Cli>Animations, using CSS3: Vertical Scroll, Shuffle, Zoom (like Flickr’s Flash Badge), 3D Horizontal Flip, 3D Vertical Flip\u003C\u002Fli>\n\u003Cli>Localized to Spanish.\u003C\u002Fli>\n\u003C\u002Ful>\n","Displays photos from Flickr, with optional tag filtering, with pure client-side javascript. Several eye-catching effects available.",10183,"2013-05-27T09:37:00.000Z","3.5.2","2.0.2",[20,110,21,23,24],"media","http:\u002F\u002Fblog.jyst.us\u002Fjavascript-flickr-badge?utm_source=Wordpress&utm_medium=Plugin%2BAdmin&utm_campaign=Javascript%2BFlickr%2BBadge","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjavascript-flickr-badge.2.3.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":28,"num_ratings":28,"last_updated":123,"tested_up_to":124,"requires_at_least":73,"requires_php":18,"tags":125,"homepage":128,"download_link":129,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":130},"fidgetr","Fidgetr","2.5.3","reaperhulk","https:\u002F\u002Fprofiles.wordpress.org\u002Freaperhulk\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Flangui.sh\u002Ffidgetr\u002F\" title=\"Fidgetr Home\" rel=\"nofollow ugc\">Fidgetr\u003C\u002Fa> is a WordPress widget that displays the latest photos from your Flickr photostream in an attractive manner.  It features support for its own themes along with very simple setup and compatibility with most WordPress themes. \u003Cstrong>Check the changelog to see what’s new!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Fidgetr requires PHP 5.0 or newer as well as WordPress 2.8 or newer.\u003C\u002Fp>\n\u003Cp>Catch new releases and other information about my plugins by following \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Freaperhulk\" rel=\"nofollow ugc\">@reaperhulk\u003C\u002Fa> on Twitter.\u003C\u002Fp>\n\u003Ch3>Theme Development FAQ\u003C\u002Fh3>\n\u003Ch4>How do I make a theme?\u003C\u002Fh4>\n\u003Cp>Check out the basic.theme.php file in the themes directory to see a very basic example of how to parse the JSON structure that fidgetr outputs. You can also write PHP.\u003C\u002Fp>\n\u003Ch4>How do I make new themes show up in the configuration dropdown?\u003C\u002Fh4>\n\u003Cp>Simply create a file called yourname.theme.php with your data.  If you have a CSS\u002FJS supplement add those support files in a directory theme_includes\u002Fyourname\u002F\u003C\u002Fp>\n\u003Cp>Please note that in Fidgetr javascript files have a very strict naming structure to allow proper queueing via WP and reduce conflicts with other plugins.  Your file must be named handle-ver-deps.js.  \u003Cem>Do not use – or _ in the handle as they are delimiters.\u003C\u002Fem>  Additionally, ver must be numeric.  Multiple deps can be provided via underscore.  Examples: slimbox-2.01-jquery.js , somelib-1.0-jquery_jquery-ui-core.js.  Be sure to name your scripts correctly to avoid conflicts with other wordpress plugins.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>Copyright 2010 Paul Kehrer\n\nThis program is free software; you can redistribute it and\u002For modify\nit under the terms of the GNU General Public License as published by\nthe Free Software Foundation; either version 2 of the License, or\n(at your option) any later version.\n\nThis program is distributed in the hope that it will be useful,\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\nGNU General Public License for more details.\n\nYou should have received a copy of the GNU General Public License\nalong with this program; if not, write to the Free Software\nFoundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA\n\u003C\u002Fcode>\u003C\u002Fpre>\n","A simple and beautiful Flickr widget that supports themes.",20,24061,"2010-08-17T21:26:00.000Z","3.0.5",[20,126,21,23,127],"photography","widgets","http:\u002F\u002Flangui.sh\u002Ffidgetr","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffidgetr.2.5.3.zip","2026-03-15T15:16:48.613Z",{"attackSurface":132,"codeSignals":156,"taintFlows":203,"riskAssessment":204,"analyzedAt":209},{"hooks":133,"ajaxHandlers":152,"restRoutes":153,"shortcodes":154,"cronEvents":155,"entryPointCount":28,"unprotectedCount":28},[134,140,143,148],{"type":135,"name":136,"callback":137,"file":138,"line":139},"action","wp_enqueue_scripts","enqueue_styles","inc\\class-flickr-widget.php",15,{"type":135,"name":141,"callback":137,"file":138,"line":142},"admin_enqueue_scripts",16,{"type":135,"name":144,"callback":145,"file":146,"line":147},"widgets_init","mks_flickr_widget_init","meks-simple-flickr-widget.php",43,{"type":135,"name":149,"callback":150,"file":146,"line":151},"plugins_loaded","mks_load_flickr_widget_text_domain",50,[],[],[],[],{"dangerousFunctions":157,"sqlUsage":158,"outputEscaping":160,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":202},[],{"prepared":28,"raw":28,"locations":159},[],{"escaped":161,"rawEcho":161,"locations":162},22,[163,166,168,170,172,174,176,177,179,181,182,184,186,187,189,191,192,194,196,197,199,201],{"file":138,"line":164,"context":165},45,"raw output",{"file":138,"line":167,"context":165},47,{"file":138,"line":169,"context":165},63,{"file":138,"line":171,"context":165},68,{"file":138,"line":173,"context":165},132,{"file":138,"line":175,"context":165},133,{"file":138,"line":175,"context":165},{"file":138,"line":178,"context":165},136,{"file":138,"line":180,"context":165},137,{"file":138,"line":180,"context":165},{"file":138,"line":183,"context":165},141,{"file":138,"line":185,"context":165},142,{"file":138,"line":185,"context":165},{"file":138,"line":188,"context":165},146,{"file":138,"line":190,"context":165},147,{"file":138,"line":190,"context":165},{"file":138,"line":193,"context":165},151,{"file":138,"line":195,"context":165},152,{"file":138,"line":195,"context":165},{"file":138,"line":198,"context":165},157,{"file":138,"line":200,"context":165},158,{"file":138,"line":200,"context":165},[],[],{"summary":205,"deductions":206},"The static analysis of meks-simple-flickr-widget v1.3 reveals a generally good security posture with no identified critical vulnerabilities in the attack surface, dangerous functions, or SQL queries. The plugin uses prepared statements for all its SQL operations and does not perform file operations or external HTTP requests. However, a significant concern is the 50% of output that is not properly escaped. This could lead to cross-site scripting (XSS) vulnerabilities if any user-supplied data is directly reflected in the output without adequate sanitization.\n\nThe vulnerability history is also clean, with no recorded CVEs, which suggests a history of secure development or at least a lack of publicly disclosed issues. While the absence of an attack surface and the use of prepared statements are strengths, the unescaped output presents a tangible risk. The lack of direct entry points like AJAX handlers, REST API routes, or shortcodes is a positive sign, but the core functionality, if it involves dynamic output, remains a potential area of concern.\n\nIn conclusion, meks-simple-flickr-widget v1.3 demonstrates good practices in areas like SQL handling and avoiding common attack vectors. The primary weakness identified is the insufficient output escaping, which warrants attention. Given the clean vulnerability history, the risk might be lower, but the presence of unescaped output is a fundamental security oversight that could be exploited.",[207],{"reason":208,"points":139},"Half of outputs are not properly escaped","2026-03-16T17:31:20.866Z",{"wat":211,"direct":218},{"assetPaths":212,"generatorPatterns":214,"scriptPaths":215,"versionParams":216},[213],"\u002Fwp-content\u002Fplugins\u002Fmeks-simple-flickr-widget\u002Fcss\u002Fstyle.css",[],[],[217],"meks-simple-flickr-widget\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":219,"htmlComments":221,"htmlAttributes":222,"restEndpoints":229,"jsGlobals":230,"shortcodeOutput":231},[220,20],"mks_flickr_widget",[],[223,224,225,226,227,228],"id=\"mks_flickr_widget\"","name=\"mks_flickr_widget\"","id=\"mks_flickr_widget-1\"","name=\"mks_flickr_widget-1\"","id=\"mks_flickr_widget-2\"","name=\"mks_flickr_widget-2\"",[],[],[],{"error":233,"url":234,"statusCode":235,"statusMessage":236,"message":236},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fmeks-simple-flickr-widget\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":53,"versions":238},[239,247],{"version":240,"download_url":241,"svn_tag_url":242,"released_at":29,"has_diff":243,"diff_files_changed":244,"diff_lines":29,"trac_diff_url":245,"vulnerabilities":246,"is_current":243},"1.1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmeks-simple-flickr-widget.1.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmeks-simple-flickr-widget\u002Ftags\u002F1.1.4\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmeks-simple-flickr-widget%2Ftags%2F1.1.2&new_path=%2Fmeks-simple-flickr-widget%2Ftags%2F1.1.4",[],{"version":248,"download_url":249,"svn_tag_url":250,"released_at":29,"has_diff":243,"diff_files_changed":251,"diff_lines":29,"trac_diff_url":29,"vulnerabilities":252,"is_current":243},"1.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmeks-simple-flickr-widget.1.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmeks-simple-flickr-widget\u002Ftags\u002F1.1.2\u002F",[],[]]